Plan for the future and trust that your revamped policies are sound
HIPAA Weekly Advisor, July 27, 2009
Want to receive articles like this one in your inbox? Subscribe to HIPAA Weekly Advisor!
As technology grows, evolves, and spawns newer versions of itself, security and privacy challenges promise to become even worse.
“The security and privacy challenges can be overwhelming,” says Brian Tretick, executive director of Ernst & Young’s IT Enablement Center in McLean, VA.
You don’t have to know about everything at once. Instead, follow these steps to get started:
Take an inventory of your information. “You need to know the good, the bad, and the ugly,” says Tretick. “It’s all part of a risk assessment.”
Identify which devices, portable or otherwise, your organization uses. Determine the risks involved, the areas in which your organization is vulnerable, and reasonable steps to mitigate these risks in the short and long term. This is important for all organizations, says Tretick. “You have internal systems, devices, paper copies, third-party service providers, and electronic exchanges,” he says. “It’s difficult to have a handle on all of that and know where all the information is. No one alone has that kind of vision.”
Editor’s note: This excerpt is from an article in the June 2009 HCPro, Inc., newsletter, Briefings on HIPAA. Get more information on this newsletter. More tips to follow in next week’s HIPAA Weekly Advisor.
Want to receive articles like this one in your inbox? Subscribe to HIPAA Weekly Advisor!
Related Products
Most Popular
- Articles
-
- Q/A: Volume requirement for reporting hydration services
- Featured blog post: Nurses face felony charges after reporting physician to the Texas Medical Board
- Catch up on what's new with injections and infusions
- Topic: CMS, OESS post new security compliance review information, checklist
- HIPAA Q&A: Level of encryption needed for email
- Capturing all necessary codes for IUD insertion and removal can be challenging
- Identify potential Medicaid RAC target areas
- What does case-mix index mean to you?
- QA:Coding multiple initial infusions
- OB services: Coding inside and outside of the package
- E-mailed
-
- Q/A: Volume requirement for reporting hydration services
- Featured blog post: Nurses face felony charges after reporting physician to the Texas Medical Board
- HIPAA Q&A: Level of encryption needed for email
- Q&A: Follow CMS' coding guidelines when using modifier -25
- Catch up on what's new with injections and infusions
- CMS has reformulated payments for some bilateral procedures
- New conflicts of interest create new challenges
- Q/A. One injection code or two?
- What does case-mix index mean to you?
- CHANGES COMING: Key differences in nationwide rollout
- Searched